$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: I2I8Lg9S6l7AERxMG5x7WakgDqi7Q92CEBA/74hmw8U= Subject key identifier: 6B:C5:6F:B5:A0:D7:7F:26:ED:15:5F:BB:88:78:1F:47:94:75:F1:77 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 09A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 099B Signing time: Fri 04 Apr 2025 20:14:01 +0000 Manifest this update: Fri 04 Apr 2025 20:14:00 +0000 Manifest next update: Fri 11 Apr 2025 20:14:00 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: Cg3nzl/DlOkMYsfB/qjZm2F/+G+O04ajGVR/rxqkgpw=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: jObq5WAnKWNNe1xvn+i1p17e0KpzbzVrnmTwIgH5Dh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717 Validity Not Before: Apr 4 20:14:00 2025 GMT Not After : Apr 11 20:14:00 2025 GMT Subject: CN=67f03d89-cf5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:64:c7:c6:77:c1:a6:10:d5:a9:3a:4a:19:04: ae:79:25:b3:0b:98:1b:d7:92:d0:23:76:c2:e8:42: 74:79:fa:13:e7:e2:a6:b8:ab:df:49:a0:76:74:d6: 64:ff:6f:2c:53:fb:ba:04:a0:d5:a7:fc:8b:5b:5e: ee:82:14:a5:94:41:8f:58:76:a3:94:30:cf:b1:61: ed:07:10:54:28:26:f1:7d:28:e6:1f:12:7c:fd:d1: 38:81:c0:a1:01:85:6c:d0:28:75:71:db:21:f5:28: 12:20:b4:ff:40:99:45:8b:3b:e9:48:90:c4:21:b9: d0:1a:fe:7f:e3:4d:35:aa:df:b0:a4:94:1f:28:8c: 37:3c:56:e3:e0:7d:b2:ab:60:11:81:99:9e:b2:fc: c1:e2:b5:78:dd:6d:45:b4:2e:38:7f:33:ac:6e:8d: 21:b0:c0:ad:4e:f2:d4:72:d7:41:52:c1:3a:6c:5b: 7b:96:3e:d9:93:bd:dd:d8:4a:c2:6b:09:7e:a4:ed: 20:e6:f2:82:82:8b:e2:36:ab:2a:e1:d6:54:b8:59: 44:09:4f:7b:e8:36:60:e8:80:b3:2f:b8:45:20:a2: 66:a9:bb:b1:33:dd:1e:f8:73:d2:a9:5c:94:ed:59: b2:05:f7:99:6f:b4:f3:f2:35:a4:bd:e7:3b:33:eb: be:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C5:6F:B5:A0:D7:7F:26:ED:15:5F:BB:88:78:1F:47:94:75:F1:77 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:dc:de:63:00:ec:0e:7a:4e:a0:43:d5:31:48:96:b3:1f:e2: cd:2a:93:0d:9e:b4:94:cd:b5:d0:2b:de:56:64:6a:4a:ec:69: 47:7b:c9:cd:67:2f:9d:1e:0c:a1:0e:f1:b4:84:29:58:bf:33: e2:71:16:f5:21:76:8e:cb:9d:15:3a:19:ea:73:73:26:45:16: 89:14:df:4d:d4:d2:11:cc:3e:b7:b0:b5:4c:7b:41:60:9b:c8: c3:c8:a5:c5:e4:18:fc:c0:72:a9:83:9e:74:12:45:a8:f7:6f: 4a:7d:2d:8a:14:63:77:cb:02:36:0b:1b:32:57:3d:87:fa:d9: a3:25:1a:82:8f:d1:f1:3c:e7:e7:b1:eb:f1:72:08:78:a7:d7: 09:10:e0:d8:96:a5:22:1c:f3:7c:8d:f6:27:ae:cd:92:39:c6: 52:43:7c:9e:8e:ed:f8:6f:94:24:ba:96:73:fd:4d:45:69:f1: d0:56:1d:93:0b:46:3c:b7:a4:59:9a:05:a6:65:7f:54:d8:6b: 44:88:8b:d1:c0:e5:7d:9f:a6:70:1a:93:c4:52:63:a5:ff:2d: 77:c5:84:0d:1d:43:7c:41:48:ae:ac:03:bb:48:73:34:e6:10: 35:19:b7:09:bc:35:4c:10:a5:3d:ad:f7:8d:17:e1:f3:24:8e: 4e:9d:8b:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUwNDA0MjAxNDAwWhcNMjUwNDExMjAxNDAwWjAYMRYwFAYD VQQDEw02N2YwM2Q4OS1jZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmTHxnfBphDVqTpKGQSueSWzC5gb15LQI3bC6EJ0efoT5+KmuKvfSaB2dNZk /28sU/u6BKDVp/yLW17ughSllEGPWHajlDDPsWHtBxBUKCbxfSjmHxJ8/dE4gcCh AYVs0Ch1cdsh9SgSILT/QJlFizvpSJDEIbnQGv5/4001qt+wpJQfKIw3PFbj4H2y q2ARgZmesvzB4rV43W1FtC44fzOsbo0hsMCtTvLUctdBUsE6bFt7lj7Zk73d2ErC awl+pO0g5vKCgoviNqsq4dZUuFlECU976DZg6ICzL7hFIKJmqbuxM90e+HPSqVyU 7VmyBfeZb7Tz8jWkvec7M+u+jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvFb7Wg 138m7RVfu4h4H0eUdfF3MB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS3N5jAOwOek6gQ9UxSJazH+LNKpMNnrSUzbXQK95WZGpK7GlHe8nN Zy+dHgyhDvG0hClYvzPicRb1IXaOy50VOhnqc3MmRRaJFN9N1NIRzD63sLVMe0Fg m8jDyKXF5Bj8wHKpg550EkWo929KfS2KFGN3ywI2CxsyVz2H+tmjJRqCj9HxPOfn sevxcgh4p9cJEODYlqUiHPN8jfYnrs2SOcZSQ3yeju34b5QkupZz/U1FafHQVh2T C0Y8t6RZmgWmZX9U2GtEiIvRwOV9n6ZwGpPEUmOl/y13xYQNHUN8QUiurAO7SHM0 5hA1GbcJvDVMEKU9rfeNF+HzJI5OnYtY -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:15 2025 by rpki-client